Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/dependabot/demo
🤖 Fork me to try out Dependabot
https://github.com/dependabot/demo
Last synced: 1 day ago
JSON representation
🤖 Fork me to try out Dependabot
- Host: GitHub
- URL: https://github.com/dependabot/demo
- Owner: dependabot
- Created: 2019-02-21T17:47:49.000Z (almost 6 years ago)
- Default Branch: main
- Last Pushed: 2024-08-09T18:54:54.000Z (5 months ago)
- Last Synced: 2025-01-02T17:02:12.595Z (9 days ago)
- Language: Ruby
- Homepage:
- Size: 26.4 KB
- Stars: 175
- Watchers: 23
- Forks: 2,267
- Open Issues: 9
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
## Dependabot Demo Repository
This repo contains some projects with outdated dependencies. Fork it to try out
Dependabot :dependabot:!
### Enabling Security Updates
- In your fork, click the **Settings** tab
- In the left hand side navigation, click **Code security and analysis**
- Enable **Dependabot security updates** or **Grouped security updates**
- Dependabot will now start creating PRs for detected security vulnerabilities
- Go into the **Security** tab and click **Dependabot** in the left hand side navigation to see what Dependabot is working on
After about 5 minutes you should see some PRs open. Merge them and the Securty Alerts will close 🎉
### Enabling Version Updates
This demo includes a `dependabot.yml` which configures [Version Updates](https://docs.github.com/github/administering-a-repository/keeping-your-dependencies-updated-automatically), but forks don't automatically start with Dependabot enabled.
The enable Dependabot on your fork:
- Click the **Insights** tab
- In the left hand side navigation, click **Dependency Graph**
- Click on the **Dependabot** tab
- Click on the **Enable Dependabot** button
- After a moment, refresh the page and you should see Dependabot hard at work
After a few minutes, you should get some more PRs!